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AMENDMENTS TO THE CLAIMS : 

Please amend the claims as indicated below. This listing of claims will replace all prior 
versions and listings of claims in the application. 
1.-23. (Cancelled) 

24. (Currently Amended) A user authentication method based on the use of 
identification biometric techniques comprising an enrolment step and a verification step, said 
enrolment step comprising the steps of: 

generating , using an image processor, a reference biometric template from a first 
biometric image of a user to be authenticated; 

splitting , using a computer, said reference biometric template into a first and a second 
reference biometric template portion; 

enciphering , using the computer, said first and second reference biometric template 
portion portions ; and 

storing each one of said first and second reference biometric template portions into a 
different memory. 

25. (Currently Amended) The method according to claim 24, wherein said step of 
storing each one of said reference biometric template portions into a different memory comprises 
the step steps of: 

transmitting said first reference biometric template portion from a first system to a 
device, said first system operating in said enrolment step; 

storing said first reference biometric template portion into a memory of said device, said 
device operating in said verification step; 
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transmitting said second reference biometric template portion from said first system to a 
second system, said second system operating in said verification step; and 

storing said second reference biometric template portion into a memory of said second 

system. 

26. (Previously Presented) The method according to claim 24, wherein said 
verification step comprises the steps of: 

generating a live template from a second biometric image of said user to be authenticated; 
enciphering said live template; and 

transmitting said live template and said second reference biometric template portion to 
said device. 

27. (Currently Amended) The method according to claim 26, wherein said 
verification step comprises the steps of: 

deciphering said live template and said second reference biometric template portion; 
recomposing said reference biometric template from said first and second reference 
biometric template portion portions ; and 

comparing said recomposed reference biometric template with said live template. 

28. (Previously Presented) The method according to claim 27, wherein said 
verification step comprises the steps of: 

sending a result of said comparison to said second system; and 
authenticating or not authenticating said user depending on said result. 

29. (Previously Presented) The method according to claim 25, wherein said step of 
splitting said reference biometric template into a first and a second reference biometric template 
portion comprises the step of: 
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destroying said biometric template performed by said first system. 

30. (Currently Amended) The method according to claim 25, wherein said step of 
enciphering said first and second reference biometric template portion portions comprises the 
steps of: 

storing a first and a second key and a related digital certificate into a memory of said first 
system, said first and second keys being respectively a public key and a private key associated 
with said first system; 

storing a first and a second key and a related digital certificate into said memory of said 
device, said first and second keys being respectively a public key and a private key associated 
with said user to be authenticated; 

signing said first and second reference biometric template portion portions with said 
private key of said first system; and 

enciphering said[[,]] first and second reference biometric template portion portions with 
said public key of said user to be authenticated. 

3 1 . (Previously Presented) The method according to claim 26, wherein said step of 
transmitting said live template and said second reference biometric template portion to said 
device comprises the steps of: 

generating an aleatory value associated with the current data verification step, said 
aleatory value guaranteeing the authenticity of said current data verification step; 
signing and enciphering said aleatory value; and 
transmitting said aleatory value to said device. 

32. (Previously Presented) The method according to claim 30, wherein said step of 
enciphering said comparison biometric template comprises the steps of: 



-4- 



Application No. 10/584,506 
Attorney Docket No. 09952.0062 

storing a first and a second key and a related digital certificate into said memory of said 
second system, said first and second keys being respectively a public key and a private key 
associated with said second system; 

signing said live template with said private key of said second system; and 
enciphering said live template with said public key of said user to be authenticated. 

33. (Currently Amended) The method according to claim 31, wherein said step of 
deciphering said live template and said second reference biometric template portion comprises 
the steps of: 

deciphering [[the]] a signature and [[the]] validity of said aleatory value; 

deciphering said second reference biometric template portion with said private key of 
said user to be authenticated; 

verifying [[its]] a signature of the deciphered second reference biometric template 
portion : 

deciphering said live template with said private key of said user to be authenticated; and 
verifying [[its]] a signature of the deciphered live template . 

34. (Previously Presented) The method according to claim 28, wherein said step of 
sending a result of said comparison to said second device comprises the steps of: 

generating a message containing said result; and 
enciphering said message. 

35. (Previously Presented) The method according to claim 24, wherein said 
identification biometric techniques comprise at least one biometric identification technique of the 
type selected from: 
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face recognition, fingerprints, hand prints, voice templates, retinal images, and 
calligraphic samples. 

36. (Previously Presented) The method according to claim 25, wherein said first and 
second systems are respectively a data enrolment system and a data verification system and said 
device is a data carrier. 

37. (Previously Presented) The method according to claim 24, wherein said step of 
splitting said reference biometric template comprises the step of: 

splitting said reference biometric template into a plurality of reference biometric template 
portions, at least some of said reference biometric template portions being used to recompose 
said reference biometric template. 

38. (Currently Amended) A user authentication architecture based on the use of 
biometric identification techniques comprising: 

at least one data enrolment system for generating a reference biometric template from a 
first biometric image of a user to be authenticated, said data enrolment system comprising a host 
computer to split said reference biometric template into a first and a second reference biometric 
template portion and for signing and enciphering said first and second reference biometric 
template portion portions ; 

at least one portable data carrier associated with said user to be authenticated, said data 
carrier comprising a memory for storing said first signed and enciphered reference biometric 
template portion; and 

at least one data verification system comprising a memory for storing said second signed 
and enciphered reference biometric template portion. 
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39. (Currently Amended) The user authentication architecture according to claim 38, 
wherein said data carrier comprises a microprocessor comprising a processing logic for 
deciphering said first and second reference biometric template portion portions , verifying the 
signature and recomposing said reference biometric template from said first and second 
deciphered reference biometric template portion portions . 

40. (Previously Presented) The user authentication architecture according to claim 
39, wherein said microprocessor comprises a comparing logic to compare said recomposed 
reference biometric template with a live template generated by a second biometric image of the 
user to be authenticated, said second biometric image of the user to be authenticated being 
generated by the data verification system. 

4 1 . (Previously Presented) A portable data carrier associated with a user that has to 
be authenticated through a user authentication architecture, said data carrier comprising a 
microprocessor comprising a memory for storing a first reference biometric template portion 
associated with said user to be authenticated, said first reference biometric template portion 
being signed and enciphered, said portable data carrier being adapted to receive as input, from 
said user authentication architecture, a second reference biometric template portion and a live 
template associated with said user to be authenticated, said second reference biometric template 
portion and said live template being signed and enciphered, said microprocessor further 
comprising: 

a processing logic for deciphering said first and second reference biometric template 
portions and for recomposing therefrom said reference biometric template associated with said 
user to be authenticated; and 
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a comparing logic for comparing said reference biometric template recomposed with said 
live template and sending a result of said comparison to said user authentication architecture. 

42. (Previously Presented) The portable data carrier according to claim 41, 
comprising a substrate whose sizes are substantially rectangular. 

43. (Previously Presented) The portable data carrier according to claim 4 1 , wherein 
said data carrier is an access card or a credit card or a debit card or an identification card or a 
smart card or a SIM card. 

44. (Currently Amended) A data verification system comprising an electronic device 
and a portable data carrier associated with a user that has to be authenticated, said data carrier 
being adapted to store a first reference biometric template portion associated with [[a]] the user 
to be authenticated, said first reference biometric template portion being signed and enciphered; 

said electronic device comprising: 

a memory adapted to store a second reference biometric template portion 
associated with [[a]] the user to be authenticated, complementary to said first reference biometric 
template portion, said second reference biometric template portion being signed and enciphered; 
and 

an image acquiring and processing device for generating a live template; 
said electronic device being adapted to encipher and sign said live template, transmitting 
said second reference biometric template portion and said live template to said portable data 
carrier and authenticating said user depending on [[the]] a result of a comparison performed by 
said data carrier between said live template and a reference biometric template of said user to be 
authenticated, said reference biometric template being rebuilt by using said first and second 
reference biometric template portion portions . 
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45. (Currently Amended) A data verification system comprising an electronic device 
and, a portable data carrier associated with a user that has to be authenticated, said data carrier 
being adapted to store a first reference biometric template portion associated with [[a]] the user 
to be authenticated, said first reference biometric template portion being signed and enciphered; 

said electronic device comprising: 

a first memory adapted to store a second reference biometric template portion 
associated with [[a]] the user to be authenticated, said second reference biometric template 
portion being signed and enciphered; 

at least a second memory adapted to store at least a third reference biometric 
template portion associated with [[a]] the user to be authenticated, said third reference biometric 
template portion being signed and enciphered, wherein said first, second and at least third 
reference biometric template portions are such that [[the]] a reference biometric template can be 
recomposed from a subset of at least two of said first second, and at least third reference 
biometric template portions; and 

an image acquiring and processing device for generating a live template; 

said electronic device being adapted to encipher and sign said live template, transmitting 
said second reference biometric template portion and said live template to said portable data 
carrier and authenticating said user depending on [[the]] a result of a comparison performed by 
said data carrier between said live template and a reference biometric template of said user to be 
authenticated, said reference biometric template being rebuilt by using said first and second 
reference biometric template portion portions . 

46. (Currently Amended) A non-transitory computer readable storage medium 
encoded with a computer program for an e l e ctronic proc e ssor that can be loaded into [[the]] a 
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memory of at least one electronic processo r, the computer program [[and]] comprising program 
codes for performing the steps of the method according to claim 24, when said computer 
program is capabl e of b e ing executed by said at least one electronic processor. 
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